Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-0085

EPSS 46.29% · P98
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-0085

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Use-after-free vulnerability in Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 Gold and SP1, Word 2013 Gold and SP1, Office 2013 RT Gold and SP1, Word 2013 RT Gold and SP1, Excel Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Excel Services on SharePoint Server 2013 Gold and SP1, Word Automation Services on SharePoint Server 2013 Gold and SP1, Web Applications 2010 SP2, Office Web Apps Server 2010 SP2, Web Apps Server 2013 Gold and SP1, SharePoint Server 2007 SP3, Windows SharePoint Services 3.0 SP3, SharePoint Foundation 2010 SP2, SharePoint Server 2010 SP2, SharePoint Foundation 2013 Gold and SP1, and SharePoint Server 2013 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Component Use After Free Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Office组件释放后使用漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Office是美国微软(Microsoft)公司开发的一款办公软件套件产品。常用组件有Word、Excel、Access、Powerpoint、FrontPage等。 Microsoft Office中存在远程执行代码漏洞,该漏洞源于程序在分析经特殊设计的Office文件时没有正确处理内存对象。攻击者可利用该漏洞当前用户的上下文中运行任意代码,损坏系统内存,完全控制受影响的系统。以下产品及版本受到影响:Microsoft Office 2007 SP3,Excel 2007 SP3,P
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2015-0085

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2015-0085

登录查看更多情报信息。

Same Patch Batch · n/a · 2015-03-11 · 48 CVEs total

CVE-2015-1623Microsoft Internet Explorer 内存损坏漏洞
CVE-2015-1626Microsoft Internet Explorer 内存损坏漏洞
CVE-2015-1628Microsoft Outlook Web App 跨站脚本漏洞
CVE-2015-1632Microsoft Exchange Server Outlook Web App 跨站脚本漏洞
CVE-2015-1633Microsoft SharePoint 跨站脚本漏洞
CVE-2015-1634Microsoft Internet Explorer 内存损坏漏洞
CVE-2015-1636Microsoft SharePoint 跨站脚本漏洞
CVE-2015-1067多款Apple产品Secure Transport 加密问题漏洞
CVE-2015-1631Microsoft Exchange Server伪造会议请求欺骗漏洞
CVE-2015-1624Microsoft Internet Explorer 内存损坏漏洞
CVE-2015-1625Microsoft Internet Explorer 内存损坏漏洞
CVE-2015-1622Microsoft Internet Explorer 内存损坏漏洞
CVE-2015-0100Microsoft Internet Explorer 内存损坏漏洞
CVE-2015-0099Microsoft Internet Explorer 内存损坏漏洞
CVE-2015-0097Microsoft文字本地区域远程执行代码漏洞
CVE-2015-0096Microsoft Windows DLL 远程执行代码漏洞
CVE-2015-0095Microsoft Windows内核模式驱动程序代码问题漏洞
CVE-2015-0094Microsoft Windows内核内存泄漏漏洞
CVE-2015-0093Microsoft Windows Adobe字体驱动程序远程执行代码漏洞
CVE-2015-0092Microsoft Windows Adobe字体驱动程序远程执行代码漏洞

Showing top 20 of 48 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2015-0085

No comments yet

Leave a comment